[Git][security-tracker-team/security-tracker][master] Update information for CVE-2023-43040/ceph

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Oct 8 20:55:06 BST 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
70ef6f93 by Salvatore Bonaccorso at 2023-10-08T21:54:38+02:00
Update information for CVE-2023-43040/ceph

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1945,6 +1945,9 @@ CVE-2023-29497 (A privacy issue was addressed with improved handling of temporar
 CVE-2023-43040 [Improperly verified POST keys]
 	- ceph <unfixed>
 	NOTE: https://www.openwall.com/lists/oss-security/2023/09/26/10
+	NOTE: https://tracker.ceph.com/issues/63004
+	NOTE: https://github.com/ceph/ceph/pull/53714
+	NOTE: Fixed by: https://github.com/ceph/ceph/commit/100d81aa060f061271499f1fa28dbdc06de443fd (main)
 CVE-2023-5197 (A use-after-free vulnerability in the Linux kernel's netfilter: nf_tab ...)
 	- linux 6.5.6-1
 	[buster] - linux <not-affected> (Vulnerable code not present)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/70ef6f93e58567e4aa57af62d5072affd84fb2b3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/70ef6f93e58567e4aa57af62d5072affd84fb2b3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231008/5baa896c/attachment.htm>


More information about the debian-security-tracker-commits mailing list